[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Update status on CVE-2017-18201/libcdio
Salvatore Bonaccorso
carnil at debian.org
Tue Feb 27 19:40:51 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
2beeb03c by Salvatore Bonaccorso at 2018-02-27T20:40:07+01:00
Update status on CVE-2017-18201/libcdio
The isuse was introduced in version 0.92 as there was a major change in
0.90 as to how CD-TEXT was handled.
Thanks: Rocky Bernstein <rocky at gnu.org>
Signed-off-by: Salvatore Bonaccorso <carnil at debian.org>
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -137,6 +137,9 @@ CVE-2018-7485 (The SQLWriteFileDSN function in odbcinst/SQLWriteFileDSN.c in uni
CVE-2017-18201 (An issue was discovered in GNU libcdio before 2.0.0. There is a double ...)
[experimental] - libcdio 2.0.0-1
- libcdio <unfixed> (bug #891638)
+ [stretch] - libcdio <not-affected> (Vulnerable code introduced post 0.92)
+ [jessie] - libcdio <not-affected> (Vulnerable code introduced post 0.92)
+ [wheezy] - libcdio <not-affected> (Vulnerable code introduced post 0.92)
NOTE: Fixed by https://git.savannah.gnu.org/cgit/libcdio.git/commit/?id=f6f9c48fb40b8a1e8218799724b0b61a7161eb1d
NOTE: with https://git.savannah.gnu.org/cgit/libcdio.git/commit/?id=dec2f876c2d7162da213429bce1a7140cdbdd734
CVE-2018-7484 (An issue was discovered in PureVPN through 5.19.4.0 on Windows. The ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2beeb03c5443a7dee9f1f8fcfa359bee618c5883
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2beeb03c5443a7dee9f1f8fcfa359bee618c5883
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180227/324d6f6f/attachment-0001.html>
More information about the Secure-testing-commits
mailing list